The following is probably the easiest way to retrieve the password used for the archives of some games, in fact it's quite common to find ZIP archives (sometimes with non-zip extensions like pak, dat) and protected by password using the ZipCrypto algorithm.

In this method I will use no debuggers, no breakpoints, no signsrch... nothing that makes you feel a pro

This step is not ever necessary but it's a good way to avoid problems with packed/protected executables and games that built the password at runtime.So, launch the game:

Launch dumproc specifying the name of the executable:

Code:

dumproc mrw.exe dump.dat

Please note that sometimes you may have two processes of the same game, remember to specify the PID of the second one, like in the following case:In that specific case you had to specify the exact pid of the game, so:

Hello luigi many thanks for the great tutorial, I download this game for understand that, and really all be ok to the last step, and I stuck there, after run zip password script I got no password, all scanning going well but no found nothing so whats wrong?

There is something really very strange in that message, it looks like your script is corrupted.The reason is simple, your messages are truncated so the password was found but you cannot see it.

Example:the -> the error "incomplete input file number 1" means that no password was foundFILE -> FILE: name of the filePassword -> Password found: followed by the textual password on the next linehex -> (hex visualization for debugging)

ok so now all be working fine, I redownload script and work very well, now my question is, I try it in another game, I got all files but in the end I got it, thats mean the password is not stored in .exe?

PS: about the dump.dat the only way to dump this one to convert to txt password dump is via strings, because exestringz for some reason when try dump it it only stuck there in console like dumping, but it never ends.

If you don't receive the "Password found" message, it means that it's not in the exe. It may happen sometimes so don't be surprised

strings is ok too.

The image you posted show that you selected passwords_list.txt as input file which is wrong, you must select the ZIP protected by password as input file (passwords_list.txt is loaded automatically by the script).

Hi guys, I'am newbie in programming,and i want to try edit some *.xml file on archive this gamehttps://www.awem.com/cradle-of-rome-2.html (Cradle Of Rome2)and yes I can extract those archive (resources.pak) with this bms scripthttp://aluigi.altervista.org/bms/awem.bmsbut when I re-importing (using awem.bms) always failed. I try open that .pak file with peazip always ask for password.may i ask to you guys to retrieve password for this game (resources.pak), or make a script for re-importing?sorry for my bad English.

thanks for a link, and i have check for Cradle Of Rome 2 [resources.pak] not found.Ctrl+f and type "Cradle" [without Quotes] only found 1 result [to these link http://aluigi.altervista.org/papers/uniginex.zip]help me please..thanks for reply..

resources.pak is a AWEM archive that you correctly extracted with my script.

If you extract the files in the same folder of the game, delete resources.pak and run the game, it may work."If" it doesn't work then you can try the reimport feature of quickbms.If the reimport feature doesn't work correctly or you are not satisfied with it (it has some limits unfortunately) then there are no solutions ready to use.In this case the script is not valid for reimporting.

Anyway this is TOTALLY unrelated to the ZIP files of this topic, so do NOT post here.

P.S.: I confirm that the game works perfectly with the files extracted in the game folder and resources.pak is deleted

resources.pak is a AWEM archive that you correctly extracted with my script.

If you extract the files in the same folder of the game, delete resources.pak and run the game, it may work."If" it doesn't work then you can try the reimport feature of quickbms.If the reimport feature doesn't work correctly or you are not satisfied with it (it has some limits unfortunately) then there are no solutions ready to use.In this case the script is not valid for reimporting.

Anyway this is TOTALLY unrelated to the ZIP files of this topic, so do NOT post here.

P.S.: I confirm that the game works perfectly with the files extracted in the game folder and resources.pak is deleted

whaaaaaaaaa thanks you very much, I will try that trick..and I am so SORRY for wrong post ...

Yeah, you have to use alternatives for 64bit processes.The Windows Task Manager (taskmgr) has a "Create Dump File" when you right-click on a process in the Processes tab, the dump is big but it's perfect for your needs.Process Explorer has a similar feature with the additional possibility to create a smaller dump that probably doesn't contain the key you need, so you have to use the "Create Full Dump" option.ProcDump is the same of the previous 2 suggestions: procdump -ma process_nameThe full dump is useful if the key is generated at runtime instead of being hard-coded in the executable.There are many tools that allow to dump only the main module of the process and not the whole memory without attaching debuggers, feel free to search on Google.

Ok this is confusing me when i launch dumproc i cant specify the game because it closes immediately am i doing something wrong? and when i get a dump dat using windows task manager the file size is 0 bytes which makes no sense please help.

The reasons behind dumproc may be two: process is "protected" (anticheat and so on) and/or is 64bit (dumproc is 32bit), probably both.Try Process Explorer launched as Administrator, select the process, "Create Dump" and try Mini dump first, Full dump may be better in some situations.dumproc should be no longer used.

You have not specified the name of the game so the other users can't help you much but your other posts are about Fortnite, please note that this topic is completely useless for finding the AES key of that game. Just trying to save your time

Thank you for replying and notifying me that this wont work for Fortnite, So that brings me to another question how are other people getting the fortnite keys? The key for the game is constantly changing so could you direct me to a post that could help me with getting the key? thanks again

You cannot post new topics in this forumYou cannot reply to topics in this forumYou cannot edit your posts in this forumYou cannot delete your posts in this forumYou cannot post attachments in this forum